Question 1

How to get started with Keystone on a RISC-V board?

Accepted Answer

Check the official documentation at docs.keystone-enclave.org for setup guides. You'll need a RISC-V platform with RV64/SV39 support and PMP registers; the 'generic' platform in the repo works for most standard cores, but full security requires additional hardware primitives.

Question 2

Keystone vs Intel SGX for confidential computing?

Accepted Answer

Keystone is open-source and RISC-V specific, offering more customization and lower cost, while Intel SGX is proprietary, x86-based, and has mature ecosystem support. Choose Keystone for RISC-V flexibility or SGX for established production use on Intel.

Question 3

What hardware is absolutely necessary to run Keystone securely?

Accepted Answer

For full security, you need a RISC-V platform with a hardware root of trust, including secure key storage, measured boot, and an entropy source. Without these, Keystone can run in a degraded mode but lacks strong security guarantees.

Question 4

Can I use Keystone in a commercial product right now?

Accepted Answer

Keystone is in incubation and moving towards production-readiness, but it may lack the stability, extensive testing, and vendor support required for critical commercial deployments. It's better for research, prototyping, or non-critical applications currently.

Question 5

How does Keystone handle memory encryption without hardware?

Accepted Answer

Keystone provides an example software-based encryption that uses scratchpad SRAM if available, but it doesn't include high-performance hardware-based encryption due to proprietary controller requirements. This is a trade-off for portability and cost.

Question 6

Is Keystone compatible with all RISC-V chips?

Accepted Answer

Keystone aims to support RISC-V processors with standard ISA and sub-ISAs, but compatibility depends on features like RV64/SV39 addressing and PMP registers. The 'generic' platform supports many, but check the plat directory for specific integrations.

Keystone

What is Keystone?

Overview

Use Cases

Best For

Related Projects

Found a gem we're missing?

Not Ideal For

Pros & Cons

Pros

Cons

Frequently Asked Questions